Every release publishes its version, commit, build verification, and infrastructure health, so anyone can confirm what is running.
Current build
Version0.1.0
Git commitmain@release
Branchmain
Built2026-06-25
Deployed viaNetlify
SDK version1.0.0
Build verification✓ reproducible
Infrastructure health
Gateway core
Production · Ubuntu 24.04 · CyberSource
Operational
Tamper-evident audit
SHA-256 proof on every payment
Operational
Webhook delivery
HMAC-SHA256 signed, retried
Operational
PQ hybrid envelope
hybrid-ready mode
Operational
ML-DSA sidecar
vetted PQ provider
Roadmap
Release notes
v0.1.0Public demonstration site live on Netlify, covering checkout, post-quantum, and proof
HighlightsReal in-browser SHA-256 audit proof over canonical JSON, hybrid PQ envelope (SHA-512 + HMAC-SHA512) matching the gateway, tamper-evident receipt chain, signed webhook simulator
RoadmapML-DSA via PQ sidecar, PCI-DSS certification, blockchain and ACH rail general availability
Gateway compatibilityCore API v1
Live audit-proof verifier
SHA-256
Every payment in the gateway emits a tamper-evident proof. Below is a proof in the gateway's real shape. Recompute its proof_hash in your browser to confirm it matches, then tamper with it and watch verification fail.
Defensible IP
An independently verifiable audit, on clean IP
PaychainX seals every transaction in a cryptographic, independently verifiable proof: a hybrid classical and post-quantum audit envelope chained for sequence integrity. It is the credibility layer card networks and banks ask for, audit evidence that does not require trusting the vendor, and it sits on a clean, transferable IP position with an auditable build history.
IP position
No copyleft dependencies
auditable GitHub history
Audit credibility, mapped to what card networks expect
Every control a network reviews for audit trustworthiness maps to a concrete, demonstrable PaychainX mechanism. The verifier above lets a reviewer confirm it without taking our word for it.
Tamper-evident recordsSHA-256 proof_hash per payment
Non-repudiationHMAC-SHA512 + PQ signature
Sequence integrityprev_hash chained ledger
Independent verificationrecompute in any browser
Key managementpq_key_id, fingerprint, rotation
Evidence bundlesper-attempt proof + dispute trail
Quantum durabilityhybrid ML-DSA roadmap
PCI-DSS alignmenttokenization, TLS, audit logging
PaychainX separates what is live today (SHA-256 audit, HMAC-SHA512 envelope, tokenization, signed webhooks) from what is on the roadmap (ML-DSA sidecar, PCI-DSS certification). No control is claimed before it is real.